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APPENDIX I 

Ch cks Done On Renumbered Java Byte Codes 



Get the instruction. The numeric value of the instruction implicitly contains the instruction type: 
insn = getpc ( -1) ; 



Implement some pre-execution checks based on this: 
/* 

* Check input stack state. By renumbering the byte codes we can 

* perform the necessary security checks by testing if the value of 

* byte code (and hence the byte code) belongs to the correct group 
*/ 

if {insn <= TYPE9_END) { 
if (insn <= TYPE1_END) { 
check_stack_int ( 1) ; 

} 

check_stack_int (0) ; 

} 

else if (insn <= TYPE12_END) { 
check_stack_ref (0) ; 

} 

else if (insn <= TYPE11_END) { 
push ( 1 ) 

> 



Finally, implement some post execution checks: 
/* 

* Set output stack state. 
*/ 

if (insn <= TYPE8_END) { 
if (insn <= TYPE6_END) { 
if (insn >= TYPE 6 _S TART ) { 
pop(l) ; 

) 

pop(l) ; 

} 

pop(l) ; 

} 

else if (insn <= TYPE10_END) { 
set_stack_int (0) ; 

) 

else if (insn >= TYPE1 1_START && insn <= TYPE16_END) { 
set_stack_ref (0) ; 

> 



Reordering of supported Java byte codes by type 



/* TYPE 


3 */ 




8def ine 


s_P0P2 


0 


#def ine 


s_IF_ICMPEQ 


1 


8def ine 


s_IF_ICMPNE 


2 


#def ine 


S_IF_ICMPLT 


3 


Sdef ine 


s_IF_ICMPGE 


4 


#def ine 


s_IF_ICMPGT 


5 


#def ine 


s_IF_ICMPLE 


6 


#def ine 


S_IF_ACMPEQ 


7 


#def ine 


S_IF_ACMPNE 


3 


/* TYPE 


6 */ 




#def ine 


TYPE 6 _S TART 


9 


#def ine 


s_SASTORE 


9 


#def ine 


S_AASTORE 


10 


#def ine 


s_BASTORE 


11 


#def ine 


TYPE6_END 


12 


/* TYPE 


1 */ 




$def ine 


s I ADD 


13 


#def ine 


s_ISUB 


14 


ttripf i np 


s IMUL 


15 


#def ine 


s_IDIV 


16 


#def ine 


s_IREM 


17 


#define 


s_ISHL 


18 


#define 


s_ISHR 


19 


#def ine 


s_IUSHR 


20 


#def ine 


s_IAND 


21 


#def ine 


s_IOR 


22 


#def ine 


s_IXOR 


23 


#def ine 


TYPE1_END 


23 


/* TYPE 


2 */ 





idefine s_I STORE 
#define s_P0P 
#define s_IFEQ 
#define s_IFNE 
#define s_IFLT 
#define s_IFGE 
#define s_IFGT 
#define s_IFLE 
#define s_TABLE SWITCH 
#define s_L00KUPSWITCH 
#define s_IRETURN 

/* TYPE 7 */ 

#define s_SAL0AD 35 
#define s_AAL0AD 3 6 

#define s_BALOAD 37 

/* TYPE 9 */ 

ttdefine s_INEG 3 9 

#define s_INT2BYTE 40 

#define s_INT2CHAR 41 

#define TYPE9_END 41 

/* TYPE 8 */ 

idefine s_ASTORE 42 

# define s_ARETURN 43 



24 
25 
26 
27 
28 
29 
30 
31 
32 
33 
34 



# define s_ATHROW 44 
#define s_IFNULL 45 
tdefine s _ I FNONNULL 46 



ftdefine TYPE8_END 



46 



ff: 



/* TYPE 12 */ 

#define s _ ARRA YL ENGT H 47 

#define s_INSTANCEOF 48 

# define TYPE12_END 48 

/* TYPE 10 */ 

#define s_SIPUSH 49 

#define TYPE10_END 49 
/* TYPE 5 V 

#define s_ILOAD 50 

#define s_ALOAD 51 

/* TYPE 11 V 

ftdefine T YP E 1 1 _S TART 52 

#define s_ACONST_NULL 52 

#define s_LDC2 53 

#define s_JSR 54 

#define s_NEW 55 

ttdefine TYPE11_END 55 

/* TYPE 16 */ 

fide fine s_NEWARRAY 56 

#define s_CHECKCAST 57 

#define TYPE16_END 57 

/* TYPE 13 */ 

#define s_DUP 58 

ffdefine s_DUP_Xl 59 

#define s_DUP_X2 60 

#define s_DUP2 61 

#define s_DUP2_Xl 62 

#define s_DUP2_X2 63 

#define s_SWAP 64 



/* TYPE 14 */ 

ftdefine s_INVOKEVIRTUAL 65 /* 01000001 */ 

ftdefine s INVOKENONVI RTUAL 66 /* 01000010 */ 



#define s_INVOKESTATIC 
#define s INVOKE INTERFACE 



67 /* 01000011 */ 

68 /* 01000100 V 



TYPE 15 V 



ftdefine 
#def ine 
ftdefine 
ftdefine 



s_GET STATIC 
s_PUTSTATIC 
s_GETFIELD 
s_PUTFIELD 



69 
70 
71 
72 



/* TYPE 4 */ 

#define s_NOP 
ftdefine s_IINC 
ftdefine s_GOTO 
ft define s_RET 
ftdefine s_RETURN 



73 
74 
75 
76 
77 



